Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

trojan-Spy.HTML.Smitfraud.c bloodhound w32.deskt [RESOLVED]

Trevuren

Posted 16 July 2005 - 12:15 AM

Trevuren

Old Dog

Retired Staff

18,699 posts

1. Please do a search for oled.dll and PSGuard.Ink. Note their complete paths. Then add then to the list of files to Killbox that you will find a little lower.

2. Please print out or copy this page to Notepad. Make sure to work through the fixes in the exact order in which they are mentioned below. If there's anything that you don't understand, ask your question(s) before proceeding with the fixes.

Advertisements

apasse

Posted 16 July 2005 - 12:56 AM

apasse

Member

Topic Starter

Member

11 posts

HI, thanks for sticking with this I'm getting a bit

that stupid dog can't find oled.dll. I searched for ole*.dll and there are a couple of dozen files, but I cant' figure out how to just copy their names in here to show you. Please forgive, but are you sure its oled?? Only, I think PSGuard.Ink, should be PSGuard.lnk, with an 'el' - it's those fonts.

Trevuren

Posted 16 July 2005 - 10:24 AM

Forget about the file. Your system is one of the cleanest around. So it is time for the final but essential cleanup and recommendations. It has been a pleasure working with you.

Congratulations, your log shows that your SYSTEM IS CLEAN

There are a few things you must do once you are completely clean:

1. Reset and Re-enable your System Restore to remove bad files from the backup that Windows makes as no program is able to clean those files:

TO DISABLE SYSTEM RESTORE1. Right-click "My Computer", and then left click "Properties".2. Left click on "System Restore Tab"3. Check box beside "Turn Off System Restore"4. Left click on "Apply"

TO ENABLE SYSTEM RESTORE1.Remove check mark from "Turn Off System Restore"2.Click on "Apply"

2. Cleanup the leftovers. Download CleanUP! - Cleans temporary files from IE and Windows, empties the recycle bin and more. Great tool to help speed up your computer and knock out those nasties that like to reside in the temp folders.

3. Finally, Re-hide your System Files and Folders to prevent any future accidents.

Here are some tips to reduce the potential for spyware infection in the future:

Make sure you keep your Windows OS current by visiting Windows updateregularly to download and install any critical updates and service packs. With out these you are leaving the backdoor open.

I strongly recommend installing the following applications:

Spywareblaster<=SpywareBlaster will prevent spyware from being installed.

How to use Spybot to remove Spyware<=If you suspect that you have spyware installed on your computer, here are instructions on how to download, install and then use Spybot. Similar to Ad-Aware, I strongly recommend both to catch most spyware.

To protect yourself further:

Spyad<=IE/Spyad places over 4000 websites and domains in the IE Restricted list which will severely impair attempts to infect your system. It basically prevents any downloads (Cookies etc) from the sites listed, although you will still be able to connect to the sites.

MVPS Hosts file<=The MVPS Hosts file replaces your current HOSTS file with one containing well know ad sites etc. Basically, this prevents your coputer from connecting to those sites by redirecting them to 127.0.0.1 which is your local computer

Google Toolbar<=Get the free google toolbar to help stop pop up windows.

apasse

Posted 16 July 2005 - 08:25 PM

Hooray! Huge thanks to you, Dr T - especially from the family, who think I've been a bit tense the past couple of days...

I will download the recommended apps and install. My wife is urging me to change browsers, but the anti-spyware software, and IE/Spyad thing, for example, is that any use on something like firefox??

It seems that while IE is most vulnerable to attacks, as the most popular browser, there is also the most security work/updates/etc being done for it. But perhaps that's a topic for a different forum.

Thanks heaps for your patience, and know there are some cold beers waiting for you in New Plymouth - and a couple of Harry Potter conversationalists - when you get to this neck of the woods.

Alex

Ooops. i note that in navigating around to get these downloads sorted, I am getting window pop-up that reads New Offer to You! in the title bar - but the page cannot be displayed - is that a vestigial effect, or just a normal consequence of IE browsing, or am I (gulp) still infected?

Trevuren

Posted 16 July 2005 - 09:03 PM

Trevuren

Old Dog

Retired Staff

18,699 posts

1. Hosts and IESpyads are good for anything.

2. As far as browsers go, I have both on my system. I mostly use IE but am gradually changing over to Firefox due to the tabbed browsing. Good for my kind of work. Firefox is proving itself to be vulnerable also but most hackers can't be bothered yet because market share is too small. So I would have to say, probably safer for now.